Privacy Policy

Last updated: July 14, 2025

Paloma (“we”, “our”, or “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and share information when you use our website, products, and services.

1. Information We Collect

We collect the following categories of information:

Account Information: Name, email address, company name, and other details you provide when signing up, requesting a demo, or contacting us.

Usage Data: Device data, browser type, IP address, pages visited, time spent, and general activity logs.

Customer Content: Information you input into our platform (e.g. quotes, pricing models, approval workflows).

Cookies and Tracking: We use cookies and third-party analytics tools (like Google Analytics) to monitor performance and user behavior.

2. How We Use Your Information

We use your data to:

  • Operate and improve our platform
  • Respond to inquiries and support requests
  • Analyze usage trends and optimize features
  • Send transactional and occasional marketing emails (opt-out anytime)

3. Sharing and Disclosure

We never sell your personal data. We may share information with:

  • Service providers who support core operations (e.g. hosting, analytics, email)
  • Law enforcement or regulators, if required
  • Successors, in the event of a merger, acquisition, or financing event

4. Data Retention

We retain your data for as long as necessary to provide services and comply with legal obligations. You can request deletion of your account and associated data at any time by contacting us.

5. Data Security

We implement administrative, technical, and physical safeguards to protect your data. However, no system is completely secure.

6. Your Rights

Depending on where you are located, you may have the following rights:

If you’re based in the EU/EEA (GDPR):

  • Right to access your personal data
  • Right to rectify inaccurate data
  • Right to erase your data (“right to be forgotten”)
  • Right to restrict or object to processing
  • Right to data portability
  • Right to lodge a complaint with a supervisory authority

Legal basis for processing: Our legal grounds include contract performance, legitimate interests, and user consent where required.

If you’re a California resident (CCPA/CPRA):

  • Right to know what personal information we collect
  • Right to delete your personal information
  • Right to opt out of “sale” or “sharing” of personal data (we don’t do either)
  • Right to non-discrimination for exercising your rights

To exercise any rights, email us at founders@getpaloma.ai.

7. International Data Transfers

We may transfer and process data outside your country of residence, including to the United States. We take steps to ensure such transfers comply with applicable data protection laws (e.g. Standard Contractual Clauses for EU data subjects).

Our website may contain links to third-party websites. We’re not responsible for their content or privacy practices.

9. Changes to This Policy

We may update this Privacy Policy occasionally. We’ll post updates here and revise the “Last updated” date. Significant changes will be communicated via email or in-app notification.

10. Contact Us

If you have questions about this Privacy Policy or want to exercise your rights, contact us at: founders@getpaloma.ai